Complete the Azure AD configuration

This page describes how to complete the Azure AD configuration by specifying the redirect URL.

Prerequisites

Azure AD is configured as described in Prepare the Azure AD configuration and Configure Azure AD.
You have copied the sign-in URL in the OpenID Connect dialog.

Note

The structure of the redirect URL that Diligent Data Room passes to Azure AD is as follows: https://<diligent-platform-url>/auth/oidc/login/<organization-id> Extract the value of the redirect URL from the sign-in URL that you have copied. The value is URL encoded.

Complete the Azure AD configuration

In the sign-in URL, find the part that starts with &redirect_uri=. This is the redirect URL. Example: &redirect_uri=https%3A%2F%2Fsecurefiles.diligentbaords.com%2Fauth%2Foidc%2Flogin%2F87d7ac96-xxxx-yyyy-a5e2-6da49cac605b
Decode the URL so that it conforms to the structure of the redirect URL as shown in the note above. Example: https://securefiles.diligentbaords.com/auth/oidc/login/87d7ac96-xxxx-yyyy-a5e2-6da49cac605b
In Azure AD, select Authentication from the side panel.
On the Web panel, select Add URI. Enter the redirect URL that you have extracted and decoded.
Select Save.

The configuration is complete. Users are now able to sign in to Diligent Data Room via Azure AD. Azure AD domain users with existing Diligent Data Room accounts will be redirected to Azure AD for authentication once they have entered their email address on the default Diligent Data Room sign-in page. Azure AD domain users without Diligent Data Room accounts can use the sign-in URL to auto-provision their accounts. All Azure AD domain users can use the sign-in URL to sign in.